$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140421.roa File: AS140421.roa (raw, json) Hash identifier: sLM0MMi+/vRi2gcUTslBFC+WaDpNjsGAvkS1GH1C7TU= Subject key identifier: 19:31:E1:15:D6:17:FF:A1:A8:1D:CD:CB:40:07:F6:75:19:36:07:5B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6C54DA015A81A6A595A3F644A7E9770CA9D4CC84 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140421.roa Signing time: Tue 09 Jan 2024 04:00:15 +0000 ROA not before: Tue 09 Jan 2024 03:55:15 +0000 ROA not after: Tue 07 Jan 2025 04:00:15 +0000 asID: 140421 IP address blocks: 103.148.88.0/23 maxlen: 24 2001:df2:c980::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:54:da:01:5a:81:a6:a5:95:a3:f6:44:a7:e9:77:0c:a9:d4:cc:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 9 03:55:15 2024 GMT Not After : Jan 7 04:00:15 2025 GMT Subject: CN=1931E115D617FFA1A81DCDCB4007F6751936075B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5c:9c:56:53:0f:5e:2f:eb:74:4a:63:6e:30: 5c:51:68:53:aa:71:f9:7f:1e:f2:12:0c:de:f9:f4: 33:bb:f2:ad:4a:2d:be:63:df:a8:37:76:b3:17:56: 91:c9:89:70:48:61:c0:28:9d:cc:af:40:a2:3d:a1: b9:7d:77:e2:1a:5b:1d:9a:ab:72:af:e6:64:07:41: 2a:57:b6:4d:29:e6:c6:f2:22:24:45:fe:de:99:f1: e4:c7:78:89:b4:ce:62:06:c7:62:2d:49:3d:9a:51: c8:d1:59:cb:7b:c5:7e:ba:e6:75:d0:61:51:df:03: 34:7d:14:6a:f5:7d:a8:47:0c:56:d9:1d:94:b1:c1: 03:b0:00:74:01:89:a4:d0:d2:84:8d:54:31:7f:3a: 5f:36:12:36:db:52:29:03:e5:ac:f9:70:c0:ec:a0: 40:5d:2a:c2:6d:e7:d7:a5:46:16:86:7e:d6:9e:bc: 17:0b:9a:0c:a4:a4:77:f1:68:25:6d:89:1d:66:22: 08:7a:66:86:64:c6:1a:8b:d9:70:75:b8:97:d2:ba: 6f:08:e7:88:94:48:89:b9:a1:3f:12:53:ee:f3:11: 07:77:ec:61:8d:da:d5:19:24:d1:d2:87:ce:69:04: 00:cd:55:d9:74:68:f1:36:60:1a:ce:24:98:84:bd: 86:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:31:E1:15:D6:17:FF:A1:A8:1D:CD:CB:40:07:F6:75:19:36:07:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140421.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.88.0/23 IPv6: 2001:df2:c980::/48 Signature Algorithm: sha256WithRSAEncryption 24:3f:a2:53:a1:56:d2:93:72:35:ee:e6:92:02:de:0e:d8:b6: 8b:8d:74:33:5d:97:d5:3b:3d:4b:ea:61:a1:5a:ca:b2:91:b7: df:f9:f5:9a:db:16:07:92:0b:c8:f4:9a:6a:a3:7d:f7:35:4e: be:f0:d9:f1:b9:d1:c3:02:4f:7d:69:0d:13:4b:37:1d:11:10: 50:50:59:b5:96:c2:c8:eb:68:e0:c0:6c:08:2c:c1:a5:d1:a1: 2f:4a:2b:7e:26:89:dd:61:ed:54:77:cf:00:07:d8:8e:26:3e: e7:d5:63:c8:19:e8:7c:d8:e1:d8:6e:db:99:99:6a:14:f3:17: 74:ad:d4:d1:c1:a3:7a:cd:e0:df:07:98:23:17:4d:8d:09:9d: 52:b7:15:d5:61:ec:17:03:b1:fa:b3:62:ee:f8:45:96:0a:af: dc:7e:44:94:78:a8:87:27:e8:b9:27:8d:26:97:06:17:e3:f0: 23:67:b8:8a:e4:b0:0e:83:a2:9f:67:ad:4b:8d:8a:de:e5:34: e0:19:06:a3:c4:1f:dd:24:c9:83:6b:5d:f2:ad:11:72:74:48: 48:a0:fe:31:f6:75:2e:5f:1b:19:38:7b:69:7e:a1:0a:71:75: 57:37:d0:36:10:f4:75:61:3c:c2:74:c3:2f:31:a2:cd:c3:be: 30:fe:e3:40 -----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgIUbFTaAVqBpqWVo/ZEp+l3DKnUzIQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwOTAzNTUxNVoX DTI1MDEwNzA0MDAxNVowMzExMC8GA1UEAxMoMTkzMUUxMTVENjE3RkZBMUE4MURD RENCNDAwN0Y2NzUxOTM2MDc1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZcnFZTD14v63RKY24wXFFoU6px+X8e8hIM3vn0M7vyrUotvmPfqDd2sxdW kcmJcEhhwCidzK9Aoj2huX134hpbHZqrcq/mZAdBKle2TSnmxvIiJEX+3pnx5Md4 ibTOYgbHYi1JPZpRyNFZy3vFfrrmddBhUd8DNH0UavV9qEcMVtkdlLHBA7AAdAGJ pNDShI1UMX86XzYSNttSKQPlrPlwwOygQF0qwm3n16VGFoZ+1p68FwuaDKSkd/Fo JW2JHWYiCHpmhmTGGovZcHW4l9K6bwjniJRIibmhPxJT7vMRB3fsYY3a1Rkk0dKH zmkEAM1V2XRo8TZgGs4kmIS9hs8CAwEAAaOCAeEwggHdMB0GA1UdDgQWBBQZMeEV 1hf/oagdzctAB/Z1GTYHWzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDQyMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8w DAQCAAEwBgMEAWeUWDAPBAIAAjAJAwcAIAEN8smAMA0GCSqGSIb3DQEBCwUAA4IB AQAkP6JToVbSk3I17uaSAt4O2LaLjXQzXZfVOz1L6mGhWsqykbff+fWa2xYHkgvI 9Jpqo333NU6+8NnxudHDAk99aQ0TSzcdERBQUFm1lsLI62jgwGwILMGl0aEvSit+ JondYe1Ud88AB9iOJj7n1WPIGeh82OHYbtuZmWoU8xd0rdTRwaN6zeDfB5gjF02N CZ1StxXVYewXA7H6s2Lu+EWWCq/cfkSUeKiHJ+i5J40mlwYX4/AjZ7iK5LAOg6Kf Z61LjYre5TTgGQajxB/dJMmDa13yrRFydEhIoP4x9nUuXxsZOHtpfqEKcXVXN9A2 EPR1YTzCdMMvMaLNw74w/uNA -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:27 2024 by rpki-client on console-ams.rpki-client.org